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TITLE OF THE INVENTION 

AUTHENTICATION APPARATUS AND AUTHENTICATION METHOD 

BACKGROUND OF THE INVENTION 
5 (1) Field of the Invention 

This present invention relates to an authentication apparatus 
whose authentication target is a specific person or a specific Item, 
especially, authentication apparatus capable of authenticating when 
those targets exist at a specific location or specific time. 

10 

(2) Description of tlie Related Art 

Conventionally, there are cases where that ''a specific object 
(a thing or a person) exists or existed at a specific location" needs to 
be managed. One example is "'visiting management" in which the 

15 outdoor activity of a sales person Is supervised by his or her 
supervisor. In this case, in the prior art, the above-mentioned 
management is performed by making a sales man have a GPS 
terminal or a cellular phone and the like (''terminal and the like" is 
used from here), performing "location chase" or "location 

20 determination", and sending the location information and the like to 
a management server that is used by his or her boss. 

Also, for example, the cases of related art 1 "location 
Information communication system" listed in the Japanese 
Laid-open Patent application No. 2000-209641, related art 2 

25 "geography data manager" listed in the Japanese publication No, 
2001-503134, related art 3 ''information processing apparatus" 
listed in the Japanese Laid-Open Patent application No. 2001-91291, 
and related art 4 "location management system" listed in the 
Japanese Laid-Open Patent application No. 2000-354268 make it 

30 possible to confirm and determine the location based on the location 
information of the specific terminal. Further, related art 5 "location 
information management apparatus" listed in the Japanese 
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Laid-open Patent application No. 2000-197098 makes it possible to 
share location information with terminals which have notification 
function of location information. In addition, related art 6 ''a 
cellular phone for search" listed in the Japanese Laid-Open Patent 
5 application No. 2000-304564 mal<es it possible to obtain the 
location information of the specific person (wanderer). 

Also, related art 7 ''information providing system" listed in the 
Japanese Lald-Open Patent application No. 2001-119761 makes it 
possible to obtain information that Is required in advance by a user 

10 when the user of a terminal goes to the specific location. Also, 
related art 8 ''taken picture management method" listed on the 
Japanese Laid-Open Patent application No. 2001-36840 makes it 
possible to attach the photograph location information to the picture 
taken with a digital camera. 

15 Also, an authentication method in which voice print data is 

used is listed as "a cellular phone" and the like in the Japan 
Laid-open Patent application No. 1996-223281. Also, an 
authentication method in which picture data indicating facial 
features is listed as "face picture recognition system" and the like 

20 listed in the Japanese Laid-Open Patent application No. 1999-85988. 
In addition, an authentication method in which iris data is used is 
listed as "an iris recognition device and an iris recognition method" 
in the Japanese Laid-Open Patent application No. 1997-212644 and 
the like. 

25 However, giving each specific person a single apparatus and 

sending location information to the apparatus are musts in these 
related arts. Therefore, they are useless in the "masquerade" case, 
for example, the case where a terminal is brought to a specific 
location by a person other than a specific person. 

30 Also, they are also useless in the case where there is a need 

to confirm that "a specific object (a thing or a person) exists or 
existed at a specific location (place)" when "indefinite number of 
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things" exist from the viewpoint of a side who wants to confirm ''the 
specific thing or person". When a specific object (a thing or a 
person) is not connected to a specific terminal and the like 
one-by-one, a prior terminal and the like cannot perform 
5 authentication. In other words, these problems occur because 
there are no terminal device capable of authenticating both of 
''location (place)" and "a thing or a person" or a system including a 
terminal device and a server device. 

More specifically, arts that function effectively are required in 

10 the following respective situations. 

(1) the situation where that "a specific item" exists in "a specific 
location" or "a specific person" and "a specific item" are required to 
be authenticated (such as authentications of deliveries to specific 
addresses, and sending and receiving item) 

15 (2) the situation where that "a specific person" exists at "a specific 
location" is required to be authenticated (management of traveling 
salesman, management of orienteering circumstances) 

(3) the situation where that "a specific behavior or a specific 
transfer" of "object (such as a person or an item and the like)" is 

20 required to be authenticated (management of a business trip, 
management of dumping industrial wastes, copyright proof of 
videotaped data or recorded data, and the like) 

(4) the situation where that new secondary effect Is required by two 
or more "authentication of an object and its location" (for example, 

25 remote lock management for a specific facility). 

Also, In the above-mentioned related arts 1^5, it is 
Impossible to Identify and authenticate a person. Also, the 
above-mentioned related art 6 or 7 cannot handle so-called 
"masquerade" case, information to be provided becomes open to a 
30 masquerade user. In the case of the above-mentioned remote lock 
management, the lock is unlocked. 

Further, related art 8 cannot attach information on a 
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photographer. Even if location information on a location where a 
photograph is taken and a photographer is attached to picture data 
by adding such a device, the device cannot function as an 
authentication device because it Is easy to be altered. 

5 

SUMMARY OF THE INVENTION 

The present invention is nnade considering the 
above-mentioned problems, and its aim Is providing an 
authentication apparatus with a high accuracy as to correctness of 

10 the existence of a specific person or a specific Item. 

In order to achieve the above-mentioned aim, the 
authentication apparatus concerning the present Invention is an 
authentication apparatus for authenticating a specific object as a 
target, comprising: a target information obtalnment unit operable to 

15 obtain first target information that characterizes the object from 
said object, a target information authentication unit operable to 
authenticate the object based on the obtained first target 
information, a location information obtainment unit operable to 
obtain location information showing a location where the object 

20 exists, and a location information addition unit operable to associate 
the obtained location information with the first target information 
concerning the object who is authenticated. 

In this way, it is possible to grasp where a correct object 
exists because the validity of the object as an authentication target 

25 Is authenticated and the location information of the location where 
the authenticated target exists is added. 

Further, In order to achieve the above-mentioned aim, the 
authentication apparatus concerning the present invention is an 
authentication apparatus for authenticating validity and an 

30 existence of a specific object as a target, comprising: a target 
Information obtainment unit operable to obtain target information 
that characterizes the object, a location information obtainment unit 
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operable to obtain location information showing a location where the 
object exists, a target Information authentication unit operable to 
authenticate the object based on the obtained target Information, a 
location information authentication unit operable to authenticate 
5 the location where the object exists based on the obtained location 
information, and an existence authentication unit operable to 
authenticate the existence of the object when the object is 
authenticated and the location information is authenticated. 

The correctness of the object as an authentication target Is 

10 authenticated in this way, which makes it possible to grasp the fact 
that a correct object existed at a due location. 

Further, in order to achieve the above-mentioned aim, the 
authentication apparatus concerning the present invention is an 
authentication system comprising: an authentication server for 

15 authenticating validity and an existence of an object as a target, 
the object being at least one of a specific person and a specific item, 
and an authentication terminal connected to the authentication 
server via a networl<, and the authentication terminal includes: a 
target information obtainment unit operable to obtain target 

20 information that characterizes said object from the object, a location 
information obtainment unit operable to obtain location information 
showing a location where the object exists, and a sending unit 
operable to send the obtained target information and the obtained 
location information to the authentication server, and the 

25 authentication server includes: a receiving unit operable to receive 
the target information and the location information from the 
authentication terminal, a target information authentication unit 
operable to authenticate the object based on the received target 
information, a location information authentication unit operable to 

30 authenticate a location where the object exists based on the 
received location information, and an existence authentication unit 
operable to authenticate the existence of the object when the object 
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is authenticated and the location infornnation is authenticated. 

As to a specific object (a person or an item owned by the 
person), an authentication terminal sends information typical of the 
object and information on the location where the object exists to an 
5 authentication server, the authentication server authenticates the 
validity of the object and the location based on the above-mentioned 
typical information and the location information, it is possible to 
grasp the fact that a specific correct object existed at a due location 
even from a remote location. 

10 Also, in order to achieve the above-mentioned aim, the 

present invention can be realized as an authentication method in 
which the characteristic units of the above-mentioned 
authentication apparatus are regarded as steps, or a program for 
having a computer such as a personal computer execute these steps. 

15 And, it is also possible to distribute such a program using a 
recording medium such as a CD-ROM or a communication medium 
such as the Internet. 



FURTHER INFORMATION ABOUT TECHNICAL BACKGROUND 
20 TO THIS APPLICATION 

filed , Is incorporated herein by reference. 

Japanese Patent application No. 2002-226532 filed August 2, 

2002. 

25 BRIEF DESCRIPTION OF THE DRAWINGS 

These and other subjects, advantages and features of the 
invention will become apparent from the following description 
thereof taken in conjunction with the accompanying drawings that 
illustrate a specific embodiment of the invention. In the Drawings: 
30 Fig. 1 is a diagram showing how various kinds of 

authentication are executed using the authentication apparatus 
when a delivery person of a delivery company distributes items in a 



-6- 



first embodiment. 

Fig. 2 is a diagram showing the appearance of the 
authentication apparatus in Fig. 1. 

Fig. 3 is a block diagram showing the functional structure of 
5 the authentication apparatus. 

Fig. 4 is a structural example of distributor's fingerprint data 
and the like which is stored in target information DB. 

Fig. 5 is a structural example of a distribution data table 
which is stored in a storage unit. 
10 Fig. 6 is a structural example of an authentication result data 

table to be registered in the storage unit when distribution is 
completed. 

Fig. 7 is a flow chart showing the processing of the 
authentication apparatus. 
15 Fig. 8 is a system structure diagram of the authentication 

system in a second embodiment. 

Fig. 9 is a diagram showing the process of a business trip 
which is an example of a management target of the authentication 
system. 

20 Fig. 10 is a structural diagram of a business trip schedule 

table indicating the employee's business trip schedule which Is to be 

stored In the authentication server. 

Fig. 11 is a structural diagram of a business trip result table 

which stores data showing the business trip result of an employee, 
25 the business trip result table is to be stored in an authentication 

server. 

Fig. 12 is a communication sequence diagram between an 
authentication server when an employee goes to a business trip and 
au authentication apparatus. 
30 Fig. 13 is a flow chart showing the process of arrival 

processing in an authentication terminal in Fig. 12. 

Fig. 14 is a flow chart showing the process of authentication 
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processing in Fig. 12. 

Fig. 15 is a comnnunication sequence diagram between an 
authentication server and an authentication terminal when the 
author of photographs with a copyright, a location where the 
5 photograph Is taken using the authentication system. 

Fig. 16 is a communication sequence diagram between the 
authentication server and the authentication terminal when 
authenticating the worker, the location and the like in the case 
where ''a lock supervisor of a facility locks the facility when no 
10 worker is inside the facility" using the authentication system. 

DESCRIPTION OF THE PREFERRED EMBODIMENT(S) 

Embodiments concerning the present invention will be 
explained below with reference to figures. 

15 (First Embodiment) 

Fig. 1 is an example of this first embodiment, and a diagram 
showing the process of various kinds of authentications using an 
authentication apparatus 200 in the present embodiment when a 
delivery person in a delivery company distributes an item. Fig. 1 

20 shows how a delivery person 110 of a delivery company 100 
distributes an item 150 to a recipient 120 in a delivery destination 
130. This time, the delivery person 110 performs an operation for 
authenticating a delivery person who used an 
authentication apparatus 200, an item, a delivery destination, 

25 delivery time and so on. 

Here, ''authentication" means proving that an operation is 
performed or a document is written by a correct operator based on 
a correct procedure and the like, the case where a specific person, 
an actual existence, an Item was delivered correctly, no falsification 

30 of the contents and the like are proved Is '"authentication". 

More specifically, the fingerprint of the delivery person 110 is 
sampled using the authentication apparatus 200 when the delivery 
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person 110 delivers the item 150 to the recipient 120, and a delivery 
person is authenticated when this fingerprint matches the 
fingerprint of the delivery person 110 registered in advance in the 
authentication apparatus 200. Further, a bar code 151 of the item 
5 150 is scanned when an address 152 registered In advance In 
association with this bar code matches the location information 
obtained here via a GPS satellite 140, and an item and a delivery 
destination is authenticated. In addition, when the time obtained 
at the time of delivery (for example, obtained from an installed 

10 watch, a radiocontrolled clock and the like) among distribution time 
periods registered in advance In association with the 
above-mentioned bar code, distribution time is authenticated. 

Fig. 2 is a diagram showing the appearance of the 
authentication apparatus 200 in the above-mentioned Fig. 1. The 

15 authentication apparatus 200 is a stand-alone type terminal which 
authenticates ''a delivery person", ''an item", ''a delivery destination" 
and ''delivery time" by an operation of the delivery person 110 when 
the item 150 is delivered, and a display panel 220, an infrared rays 
port 230, a fingerprint reading sensor 240, a keyboard 250, a 

20 memory slot 260, a bar code reader 270, an antenna 280 and the 
like are stored in the case 210. 

The display panel 220, which can be a liquid crystal display, 
the contents of operation input received from an operator and the 
above-mentioned authentication result are displayed through the 

25 keyboard 250. Fig. 2 shows a display example of various kinds of 
authentication results, procedure circumstances and the like 
(221-224). 

The Infrared rays port 230 is an input and output port capable 
of data communication with other information terminal such as a 
30 personal computer using Infrared rays based on the IrDA standard 
and the like. 

The fingerprint reading sensor 240 is a sensor of electrostatic 
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capacity or optical type for scanning fingerprints, and the sensor 
scans a fingerprint of a finger put on the sensor. This fingerprint 
reading sensor 240 has a communication port 245 and the memory 
slot 260. Further, this fingerprint reading sensor 240 Is detachable, 
5 and thus it Is possible to become standard equipment of the 
authentication apparatus 200 or connect to a Personal Digital 
Assistants (PDA) such as other cellular phone via a communication 
cable which Is connected to the communication port 245. 

The communication port 245, which can be a serial 
10 communication port, is a communication interface port for sending 
data on the above-mentioned authentication from the fingerprint 
reading sensor 240 to a PDA other than the authentication 
apparatus 200. 

The memory slot 260 Is an Interface device for reading or 

15 writing from or to a small storage medium such as an SD memory 
card. For example, the name and the address 152 of the recipient 
120, the ID code of the delivery person 110 who is scheduled to 
deliver and scheduled delivery time period of respective one of ID 
codes of items which are to be delivered, are stored in advance in 

20 the small storage medium before delivery in a delivery company 500. 
Also, the ID code of the delivery person 110 and the fingerprint data 
of the delivery person are stored in a separately Installed memory 
(not shown), registered or renewed by a supervisor and the like of 
the delivery company 100, and secured. 

25 The bar code reader 270 Is a device (such as an OCR type, a 

CCD type and the lil<e) for the reading bar code 151 attached to the 
above-mentioned Item 150 to be delivered. 

The antenna 280 is an antenna for receiving location 
information or time Information and the like which Is sent from a key 

30 station of a PHS or a cellular phone (not shown) or the GPS satellite 
140 and the like. 

A speaker 290 generates an audible alarm when the holder of 
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the authentication apparatus 200 (such as the above-mentioned 
operator 110) nears to the previously set range (for example, within 
a radius of 50m of the above-mentioned delivery destination 150). 
Fig. 3 is a block diagram showing the functional structure of 
5 the authentication apparatus 200 in the above-mentioned Fig. 2. 
As shown in Fig. 3, the authentication apparatus 200 comprises an 
input unit 10, a display unit 20, an operation control unit 30, a target 
information processing unit 40, a sending and receiving control unit 
50, a time information authentication unit 60, a location information 

10 processing unit 70, a video generation unit 80, an audible alarm 
generation unit 85 and a storage unit 90. 

The input unit 10 Is a part that obtains data necessary for this 
authentication apparatus 200 and receives operation input from an 
operator, and the input unit 10 comprises a target data obtainment 

15 unit 11 and a user input unit 12. 

The target data obtainment unit 11 includes the fingerprint 
reading sensor 240, the bar code reader 270 in the 
above-mentioned Fig. 2, and the target data obtainment unit 11 
obtains information (called ''target information" from here) 

20 necessary for differentiating respective one of these things to be 
authentication targets from each other (for example, a person or an 
Item) and sends the target information to the operation control unit 
30. 

Here, target information in the case of authenticating a 
25 person includes an ID code or a password inputted by an operator, 
fingerprint data inputted through the fingerprint reading sensor 240 
and the like, voice print data, picture data showing facial features, 
iris data, DNA data and so on. Authentication can be performed 
using one of those target information data or authentication with a 
30 higher accuracy can be performed when using two or more target 
information data in combination. On the other hand, target 
information in the case of authenticating an item includes an ID code 
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(including a bar code), picture data showing the feature of an item 
and so on. 

The user input unit 12 is a part corresponding to the keyboard 
250 in the above-mentioned Fig. 2, and the user input unit 12 
5 receives a keyboard input of an ID code, a password and the like 
from an operator as the need arises- 

The display unit 20 Includes the display panel 220 in the 
above-mentioned Fig. 2 and displays the contents Inputted through 
the user Input unit 12 or an authentication result. 

10 The operation control unit 30 is, for example, a micro 

computer that has a ROM or a RAM, and the operation control unit 30 
controls the whole authentication apparatus 200- Further, the 
operation control unit 30 receives target information from the target 
information obtainment unit 11 and sends the target information to 

15 the target information processing unit 40. In this case, the 
operation control unit 30 stores the received target information as 
data base in the storage unit 90 as the need arises. In addition, the 
operation control unit 30 has an integral clock capable of checking 
time, and the operation control unit 30 gives time information 

20 showing the time upon request from a time information obtainment 
unit 61. Also, the operation control unit 30 compares the address 
of the previously set delivery destination with the present address 
with a certain frequency (for example, at a rate of once per 30 
seconds), when the present address nears to a predetermined range 

25 (for example, within a radius of 50m of the above-mentioned 
delivery destination 150), the operation control unit 30 generates an 
alarm generation signal, and sends the alarm to the audible alarm 
generation unit 85, Also, the operation control unit 30 may have a 
built-in radiocontrolled clock and send time information according to 

30 the clock. 

The target information processing unit 40 performs 
authentication processing as to target information received via the 
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operation control unit 30, has the function that updates target 
information stored in the target information DB 42, and comprises a 
target information authentication unit 41, the target information DB 
42 and a target information DB update unit 43. 
5 The target information authentication unit 41 checl<s target 

information received from the operation control unit 30 against 
information stored in advance in the target information DB 42, 
makes a judgment of ""matched" or "'not matched'', notifies the 
operation control unit 30 of the result. For example, the Inputted 

10 delivery person's fingerprint data Is checked against fingerprint data 
stored In advance In the target information DB 42 in the target 
information obtainment unit 11, and the target information 
authentication unit 41 notifies the operation control unit 30 of ""a 
delivery person ID" corresponding to the fingerprint data when 

15 there is a matching fingerprint, while the target information 
authentication unit 41 notifies the operation control unit 30 of ''no 
matching person". It is possible to input data except the delivery 
person's fingerprint data, for example, an ID code, a password, 
voice print data, data on a facial feature, iris data, DNA data and the 

20 like through the target information obtainment unit 11, check those 
data against previously registered data, and notify the operation 
control unit 30 of the result. 

The target information DB 42 is, for example, a RAM or a hard 
disc, and the target Information DB 42 stores an ID code or a 

25 password for differentiating a person or an item from each other, 
fingerprint data, voice print data, data on a facial feature, iris data, 
DNA data and so on. Registration or update of the 
above-mentioned data should be performed by a specific person, 
and the security should be secured. 

30 The target information DB update unit 43 registers or updates 

target Information stored in the target information DB 42 on an 
instruction from the operation control unit 30. 
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The sending and receiving control unit 50 has a function that 
communicates with a GPS satellite, a PHS, a cellular phone so as to 
obtain location Information and time Information that are necessary 
for determining the present location and the present time, and the 
5 sending and receiving control unit 50 has a GPS data receiving unit 
51, a location information receiving unit 52, and a data receiving 
unit 53. 

The GPS data receiving unit 51 receives location information 
and time information from a GPS satellite 550. The location 

10 Information receiving unit 52 receives location information from a 
base station of a PHS or a cellular phone, location information from 
a beacon and the lil<e. The data receiving unit 53 is a part 
corresponding to the infrared rays port 230 in the above-mentioned 
Fig. 2 and a sending control circuit in a PHS, a cellular phone and the 

15 like, and the data receiving unit 53 sends the data of authentication 
result and the like received from the operation control unit 30 to a 
PC or other portable information terminal and the like. 

The time information authentication unit 60 checks time 
Information received from the operation control unit 30 against 

20 information stored in advance in the storage unit 90 (for example, 
the above-mentioned delivery time period), and notifies the 
operation control unit 30 of the result. The time information 
authentication unit 60 checks, for example, time information 
obtained via the GPS data receiving unit 51 against delivery time 

25 period stored in advance In the storage unit 90, notifies the 
operation control unit 30 of ^'delivery on time" when the time shown 
by time information Is included in one of those delivery time periods 
or ''delivery not on time" when the time is not included. 

The location information processing unit 70 has a function 

30 that authenticates a location by checking location Information 
received via the sending and receiving control unit 50 and the 
operation control unit 30 against data stored in advance In a location 
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information DB 72, and the location Information processing unit 70 
comprises a location information generation authentication unit 71, 
a location information DB 72 and a location information DB update 
unit 73. 

5 The location Information generation authentication unit 71 

transforms location information received via the operation control 
unit 30 to the one that matches location information stored in 
advance In the location information DB 72 (for example, transforms 
the latitude and longitude of the received time Information to the 

10 real address), checks the changed location information with location 
information stored in advance in a location information DB, and 
makes a judgment of ''matched" or ''not matched". The judgment 
result is notified to the operation control unit 30. 

The location information DB 72 Is, for example, a hard disc, a 

15 RAM and the like, and the location information DB 72 stores data for 
transforming the above-mentioned information. For example, it is 
a data base for transforming location information represented by the 
latitude and longitude to the real address (for example, A A city O 
O prefecture) (or the converse transformation). 

20 The location information DB update unit 73 updates the 

contents of the location information DB 72 according to the 
Instruction of the operation control unit 30. 

The video generation unit 80 stores the videotaped data 
obtained by an operator (such as the appearance of the item to be 

25 delivered or Its ID code), the reading result of a bar code and the 
like. 

The audible alarm generation unit 85 Includes the 
above-mentioned speaker 290, synthesizes the predetermined 
beeps and outputs an audible alarm from a speaker when receiving 
30 an alarm generation signal from the operation control unit 30. 

The storage unit 90 is the memory slot 260 in the 
above-mentioned Fig. 2, a compact storage medium, a RAM and the 
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like, and the storage unit 90 stores the recipient's name and address, 
an ID code of the scheduled delivery person and the scheduled 
delivery time period of respective one of items to be delivered that 
are registered before delivery as mentioned above, an ID of a 
5 delivery person, a delivery location, delivery date and time of 
respective one of items to be delivered that are registered as an 
authentication result and the like. The above-mentioned compact 
storage medium can be a flexible disc and the like other than an 
arbitrary memory card represented by an SD card, a multimedia 

10 card and so on. 

Note that data to be stored may be encrypted and the storage 
medium may be an SDX that is encrypted. 

Fig. 4'>^Fig. 6 are structural examples of data stored in the 
target information DB 42 or the storage unit 90 in the 

15 above-mentioned Fig. 3. 

Fig. 4 is a structural example of delivery person's fingerprint 
data and so on to be stored in the target information DB 42. As 
shown in Fig. 4, a delivery person's fingerprint data 403 is 
associated with a delivery person's ID 401 and a delivery person's 

20 name 402 and stored in advance (before starting delivery) in the 
target information DB 42. Note that only a few staff members in 
charge out of staff members are allowed to register or update this 
fingerprint data and any delivery person Is not allowed to register or 
update this fingerprint data. 

25 Fig. 5 is a structural example of a data table for delivery to be 

stored in the storage unit 90. Here, "a data table for delivery" 
means a table into which Information on undelivered items is 
Integrated, and the data table for delivery is registered before 
starting delivery on the date of delivery. As shown in Fig. 5, a 

30 recipient's name 502, a recipient's address 503 and a scheduled 
delivery time period 504 for each item ID 501 are stored in advance 
(before starting delivery) in the storage unit 90 of data table for a 
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delivery 500. Year, month and day may also be registered in the 
above-mentioned scheduled delivery time period 505. Also, only 
staff members in charge are allowed to register or update these 
delivery data. 

5 Fig. 6 Is a structural example of an authentication result data 

table when finishing delivery registered in the storage unit 90. 
Here, ''authentication result data table" is a table Into which various 
kinds of information necessary for authentication and an 
authentication result are integrated before delivering an Item, and 

10 ''authentication result data table" is stored when finishing delivery. 
As shown in Fig. 6, a delivery person's ID 602, a delivery location 
603, the delivery date and time 504, and the recipient's fingerprint 
data 605 for each item ID 601 are stored in the storage unit 90 as 
the authentication result data table 600 when finishing delivery. 

15 Here, a delivery person ID 602 is a delivery person's ID code stored 
when the delivery person's fingerprint data matches the previously 
registered fingerprint data at the time of delivery. Also, a delivery 
location 603 shown with the latitude and longitude and a delivery 
time and date 604 are automatically obtained from a GPS satellite 

20 and the like and stored when the item ID is read by the bar code 
reader 270. Recipient's fingerprint data 605 is obtained from a 
recipient as a confirmation indicating the delivery of the item is 
completed. 

Next, the processing flow of the authentication apparatus 200 
25 when performing various kinds of authentications using the 
authentication apparatus 200 in the delivery person 110 of the 
above-mentioned delivery company 100 delivers the item 150 will 
be explained. 

Fig. 7 Is a flow chart showing the processing of this 
30 authentication apparatus 200. 

First, the operation control unit 30 has display unit 20 display, 
for example, "Input a delivery person's fingerprint" (S701), and 
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waits for input of a fingerprint from a delivery person (S702). 
When a fingerprint is inputted, the operation control unit 30 refers 
to the target information DB 42 and Instructs the target information 
authentication unit 41 to judge whether the delivery person 
5 concerned is a right delivery person or not. In this case, when the 
delivery person is judged to be right, the delivery person concerned 
is ^^authenticated" (S703). 

Next, the operation control unit 30 has a display unit 20 
display, for example, "'Input a bar code of an item" (S704), and waits 

10 for an input of a bar code attached to an item (S705). When a bar 
code is inputted, the operation control unit 30 refers to the target 
Information DB 42 and Instructs the target Information 
authentication unit 41 to judge whether the item concerned Is an 
item to be delivered. When the Item is judged to be the Item to be 

15 delivered, the item concerned is ''authenticated" (S706). 

Further, the operation control unit 30 has a display unit 20 
display, for example, "Input a recipient's fingerprint" (S707), and 
waits for an input of a fingerprint from a recipient (S708). On 
inputting a fingerprint, the operation control unit 30 instructs the 

20 sending and receiving control unit 50 to obtain location information 
and time Information (S709). When location information and time 
information are obtained, the operation control unit 30 instructs the 
location information processing unit 70 and the time information 
authentication unit 62 to judge whether the delivery Information and 

25 delivery time are right or not (S710). 

Further, the operation control unit 30 sends the 
above-mentioned authentication result to the display unit 20 
(S711). 

As mentioned above. It is possible to authenticate "a specific 
30 object (a person or a thing) existing at a specific location and an 
item is delivered right" because the authentication apparatus 200 of 
this embodiment checks the dynamically obtained data against data 
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registered in advance and which is secured. 

Note that authentication order is arbitrary, while the 
authentication in the above-mentioned enabodinnent Is perfornned In 
the following order: first, ''a delivery person's fingerprint", second, 
5 ^'an item ID", and the last, ''a recipient's fingerprint". Also, an 
example of using fingerprint data as target information for 
authenticating a person is shown, but target information is not 
limited to fingerprint data, voice print data, picture data showing the 
facial feature, iris data and the like can also be used as mentioned 
10 above. 

Also, the authentication method by the target Information 
authentication unit 41 and the location information generation 
authentication unit 71 In the above-mentioned embodiment can be a 
general authentication method. For example, an authentication 

15 execution code made by a specific authentication organization can 
also be used. Also, it is possible to maintain authentication 
accuracy (for example, avoid a ''masquerade" case) by dynamically 
controlling an authentication code of each terminal (each 
authentication apparatus in this case). 

20 Further, target information used for authentication of the item 

150 in the above-mentioned embodiment Is not limited to the bar 
code 151 and it can be arbitrary information for authenticating an 
item (such as video data of an appearance). This time, it is also 
possible to confirm that a tag Is attached to Item S in the video 

25 generation unit 80 as a picture. Consequently, it becomes possible 
to confirm that the tag does not come off from Item S. 

It is also possible to authenticate item S directly from the 
picture of item S. That Item S is surely delivered to the location is 
proved by authentication apparatus 1 authenticating the location 

30 and item S when item S Is delivered to Mr. B. 

For example, when considering the case where the 
above-mentioned Mr. A requested delivery company D for delivering 
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Mr. B the item S of importance, company D can prove that ''item S is 
sent to Mr. B" by performing authentications of Mr. B and item S. 
Thus, a false statement by company D (making a report of 
''delivered" although company D did not deliver Item S in fact) or 
5 "masquerade" (a person other than Mr. 8 receiving item S Instead of 
Mr. B) can be avoided, plus, company D can prove that the delivery 
of a package was surely finished. This invention is applicable in 
proof of delivery mail or in the case where other arbitrary "specific 
person" and "specific item" are authenticated. 

10 

(Second Embodiment) 

An authentication system 300 composed via a net work will be 
explained In this second embodiment, while the authentication 
apparatus 200 of a stand-alone type is explained in the 

15 above-mentioned first embodiment. This authentication system 
300 is a system in which the authentication server 310 that receives 
data necessary for authenticating fingerprint data, location 
information and the like from the authentication apparatus 201 
performs various kinds of authentication (for example, 

20 authentication and the like such as "a visitor" who visited on a 
business trip, "a visiting destination", "a visiting time" and the like) 
based on these data. 

Units different from the above-mentioned embodiment 1 will 
be focused on below, the same code are assigned to the same units, 

25 and explanation for those units are omitted. 

Fig. 8 Is a system structure of the authentication system 300 
in this embodiment. As shown in Fig. 8, this system 300 sends 
target information from the authentication apparatus 201 to the 
authentication server 310 via the network 320 such as the Internet, 

30 and the authentication server 310 authenticates the target 
information based on the received target information. 

The authentication apparatus 201 Is a terminal for sending 
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target Information to the authentication server 310, and there is no 
need to have the target Information processing unit 40, the time 
Information authentication unit 60 and the location information 
processing unit 70 in the authentication apparatus 200 while the 
5 authentication apparatus 201 has the same function as the 
authentication apparatus 200 in the above-mentioned embodiment 
1. 

In other words, the authentication server 310 Is a server that 
receives target information from the authentication apparatus 201, 

10 and performs various kinds of authentications based on this target 
Information (such as a personal computer and the lll<e that has a 
communication function and a server function), and the 
authentication server 310 has the operation control unit 30, the 
target information processing unit 40, the time information 

15 authentication unit 60 and the location information processing unit 
70 (not shown) in the authentication apparatus 200. 

Fig. 9 is a diagram showing how the business trip was going 
on as an example of control target by the authentication system 300, 
and Fig. 9 is a diagram showing a scheduled route and a scheduled 

20 visiting time in the business trip (which are shown in Fig. 9). As 
shown in Fig. 9, a company staff member 901 visits a company 910 
at 10 o'clocl<, and then visits a company 920 at 13 o'clock, a 
company 930 at 15 o'clock, a company 940 at 16 o'clock in order. 
At that time, a company staff member 901 sends fingerprint data, 

25 location information and the like to the authentication server 310 
when arriving at respective visiting companies. Consequently, a 
supervisor 902 In an office 900 authenticates ''a visitor", ''a visiting 
destination" and ''visiting time". 

Fig. 10 Is a structural example of a table Into which data 

30 showing the business trip schedule of the company staff member 
901 Ca business trip schedule table" below). As shown in Fig. 10, 
a company address 1002, a scheduled visitor's ID 1003 and a 
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scheduled visiting time 1004 for each visiting destination company 
name 1001 are stored in this business trip schedule table 1000. 
This business trip schedule table is stored in a storage unit 90 of an 
authentication server 310 before the business trip of a company 
5 staff member 901. 

Fig. 11 is a structural example of a table into which data 
showing the business trip result of a company staff member 901 (*'a 
business trip result table" below). As shown in Fig. 11, dada 
showing a visiting location 1102, a visitor's ID 1103, a visiting date 

10 and time 1104 and a visitor's fingerprint data 1105 of respective one 
of visiting company 1101 in this business trip table 100 are 
registered. Each data of this business trip result table is stored in 
a storage unit 90 of an authentication server 310 after a company 
staff member 901 (or an operator of an authentication terminal for 

15 201) arrives at each business trip (after receiving target information 
from an authentication apparatus 201 and authenticating the target 
information). ^^-'^ in Fig. 11 indicates that the company staff 
member 901 does not arrive at the company and the is unset 
data. 

20 Fig. 12 is a communication sequence diagram between an 

authentication server 310 and an authentication apparatus 201 
when a company staff member 901 makes a business trip. 

First, necessary data is registered in business trip schedule 
table 1000 before a company staff member 901 makes a business 

25 trip (S1201). Next, a company staff member 901 sends his or her 
''fingerprint data", obtained ''location information" and "time 
information" to an authentication server 310 as arrival processing 
when arriving at company of the business trip destination (S1202, 
S1203). Consequently, an authentication server 310 authenticates 

30 "a visitor", "a visiting destination" and "a visiting time" as 
authentication processing based on the received above-mentioned 
information and registers the predetermined data in a business trip 
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result table 1100 (S1204). 

The above-mentioned processing Is repeated each time a 
company staff member 901 arrives at respective one of companies 
according to the schedule (S1205). 
5 Fig. 13 Is a flow chart showing the arrival processing in an 

authentication terminal in the above-mentioned Fig. 12. 

First, operation control unit 30 In an authentication terminal 
201 compares the previously set visiting destination address and 
the present address at a fixed frequency (for example, at a rate of 

10 once in 30 seconds), when the present address nears to the 
previously set visiting destination address (for example, within a 
radius of 50m from a visiting destination) (S1301:Yes), the 
operation control unit 30 generates an alarm generation signal and 
sends an audible alarm generation unit 85. Consequently, an 

15 audible alarm generation unit 85 generates an audible alarm 
(S1302) 

Next, an operation control unit 30 has a display 20 display, for 
example, ''Input a visitor's fingerprint" (S1303), and waits for a 
fingerprint input from an operator (S1304). When a fingerprint is 
20 Inputted, an operation control unit 30 generates fingerprint data 
(S1305). 

After this, an operation control unit 30 instructs a sending and 
receiving control unit 50 to obtain location Information and time 
information (S1306). When location Information and time 

25 information Is obtained, an operation control unit 30 sends the 
above-mentioned fingerprint data, location Information and time 
Information to an authentication server 310 (S1307). 

Fig. 14 Is a flow chart showing the authentication processing 
1204 in the above-mentioned Fig. 12. 

30 First, when an operation control unit 30 of an authentication 

server 310 receives visitor's fingerprint data, location information 
and time Information from an authentication terminal 201 (S1401), 
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and authenticates the visitor, the visiting destination, and the 
visiting time based on a visitor's fingerprint data stored in advance 
in the target information DB 42, an address 1002 stored in a storage 
unit 90 and a scheduled visiting date and time 1004 (S1402'^'S1404). 
5 Note that the authentication order of each processing of the 
above-mentioned S1402'^'S1404 is not limited to the one mentioned 
In Fig. 14, It Is arbitrary. 

Also, this authentication system 300 is not limited to the 
above-mentioned business trip control applicable when 
10 authenticating an author of a publication and a staff member in lock 
control. 

Fig. 15 is a communication sequence diagram between an 
authentication server 310 and an authentication terminal 201 when 
authenticating an author in a photograph publication, video location 

15 and the like. 

First, when reading photograph data by a photographer's 
operation (S1501), an authentication terminal 201 sends photo data, 
fingerprint data, location information on a location where the 
photograph is taken and time information on when the photograph is 

20 taken obtained in the same manner as Fig. 13 (''photographer" is 
employed in stead of 'Visitor") to an authentication server 310 
(S1502, S1503). 

Next, an operation control unit 30 of an authentication server 
310 receives photograph data, fingerprint data, location information 

25 and the like from an authentication terminal 201, and authenticates 
a photographer based on the photographer's fingerprint data 
registered in advance (S1504). Further, an operation control unit 
30 of an authentication server 310 authenticates the photographed 
location (the present location at which a photographer stands) 

30 based on the information showing the previously registered location 
where photographs are scheduled to be taken (S1505). 

When It Is possible to obtain information that makes it 
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possible to identify objects from the above-mentioned photograph 
target lilce the above-mentioned bar code. It is possible to send this 
information to an authentication server 310 and authenticate the 
information with a higher degree of accuracy. 
5 Fig. 16 is a communication sequence diagram between an 

authentication server 310 and an authentication terminal 201 when 
authenticating a worker, the location and the like when ''a lock 
supervisor of a facility locks in the case where no worker is inside the 
facility using this authentication system 300. This case, an 

10 operator holds an authentication terminal 201, and an 
authentication server 310 is equipped in a control center (not 
shown). Plus, it is allowed to lock the door of the facility only when 
the lock supervisor is inside the control center. 

First, an authentication terminal 201 receives an input of a 

15 worker (S1601) and obtains location information and time 
information (S1602) when a worker leaves the facility. Further, an 
authentication terminal 201 sends the obtained fingerprint data, 
location information and the like to an authentication server 310 
(S1603). 

20 Next, an authentication server 310 inside the control center 

authenticates the fact that no worker is inside the facility based on 
the received worker's fingerprint data, location information and the 
like (S1604, S1605). Further, an authentication server 310 obtains 
fingerprint data from a supervisor, location information and time 

25 information, and authenticates the fact that a supervisor is inside 
the control center (S1606, S1607). After confirming that no 
worker is inside the facility by the above authentications (S1608), 
and an authentication server 310 becomes possible to lock the door 
of a facility (S1609). 

30 The above-mentioned system can perform the same lock 

control by repeating the same authentication of each worker even 
when there are a plurality of workers. 
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up to this point, by using an autlientication system 
concerning this embodiment, it becomes possible to build a security 
system with a higher accuracy In a remote location because a target 
object, the location information and the like is sent from an 
5 authentication terminal to an authentication server via a network. 

In order to accelerate an authentication processing inside the 
authentication apparatus, it is possible to use Logical Unit Table 
(LUT) other than the above-mentioned target information DB and 
location information DB. By using this, it becomes possible to 
10 reduce data inputs necessary for authentication. 

It is also possible to improve the authentication accuracy by 
superimposing plural kinds of authentications. For example, when 
the error rates of an authentication apparatus are a factor of 1000, 
it is possible to improve the error rates to a factor of 1000000 by 
15 authenticating using two authentication apparatuses. 

Like a plurality of authentication apparatuses mentioned 
above, it is possible to improve the authentication accuracy by using 
a plurality of data for authentication of an authentication target, and 
a person. 

20 Further, only when these two authentications are approved, it 

is possible to use authentication results as a verification tag when 
delivering an item (or delivering an item) by making these 
authentications effective. Function by using a plurality of data for 
authentication is not limited to the one mentioned above, a plurality 

25 of data for authentication can be used so as to realize an arbitrary 
function. 

Also, other authentication apparatus or a server can 
authenticate the authentication function of a specific authentication 
apparatus. 

30 As an authentication means of an authentication apparatus, a 

cryptographic technology such as a secret key, a public key, 
cryptography based on the difficulty of an inverse operation of 
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one-way function and a DNA authentication by sweat and so on can 
be used. 

When there are plural kinds of authentication methods, an 
authentication server can dynamically select an authentication 
5 method according to the communication environment, the 
performance of an apparatus and the like, and notifies the 
authentication terminal of the authentication method. 

Further, when the password of an operator and the like leaks 
to an outsider and the like, it is possible to have an operator present 
10 a warning such as ''There is a possibility of password leakage". Also, 
it is possible to control the usage of the apparatus concerned to 
stop. 



